On May 17, 2016, the European Council formally adopted its position at first reading of the Network and Information Security Directive (“NIS Directive”). The objective of the NIS Directive is to increase cooperation between EU Member States on issues … [Read more] about European Council Adopts the Network and Information Security Directive
Illinois Makes Extensive Changes to Data Breach Notification Law
On May 6, 2016, Illinois Governor Bruce Rauner signed HB1260, which significantly updates the state’s Personal Information Protection Act. The changes take effect on January 1, 2017. When the new law becomes effective, Illinois’ data breach … [Read more] about Illinois Makes Extensive Changes to Data Breach Notification Law
Supreme Court Holds Congress Cannot Confer Automatic Standing By Statute
The Supreme Court has issued its much anticipated opinion in Spokeo Inc. v. Robins, No. 13-1339, 578 U.S. ___ (2016) (click here for a prior post detailing the procedural history and case background). The Supreme Court granted certiarori in Spokeo … [Read more] about Supreme Court Holds Congress Cannot Confer Automatic Standing By Statute
GDPR Published Today, Commencing Two-Year Countdown to Application
One of the most important EU legislative initiatives in recent years, and a landmark in privacy regulation worldwide, the GDPR is set to replace the Data Protection Directive (95/46/EC) of 1995. After the Council of Ministers accelerated the voting … [Read more] about GDPR Published Today, Commencing Two-Year Countdown to Application
Nebraska Makes Changes to Data Breach Statute
Nebraska Governor Pete Ricketts has signed LB835 into law, updating the state’s data breach notification statute. The changes take effect on July 20, 2016. With the updates, Nebraska joins a growing number of states that include a username or … [Read more] about Nebraska Makes Changes to Data Breach Statute